I already had this in /etc/openldap/ldap.conf......tls_cacert /etc/openldap/cacert/ca.crttls_cacertdir /etc/openldap/cacerttls_cert /etc/openldap/certs/myhost.crttls_key /etc/openldap/certs/myhost.key..